Table of Contents

RSA Key Components

Public Key: (n, e)
Private Key: (n, d)
n = p ร— q
ฯ†(n) = (p-1)(q-1)
e ร— d โ‰ก 1 mod ฯ†(n)

Introduction to RSA Encryption

RSA encryption, named after its inventors Ron Rivest, Adi Shamir, and Leonard Adleman (1977), is one of the most widely used public-key cryptosystems in the world. It forms the backbone of secure internet communication, digital signatures, and modern cybersecurity infrastructure.

Why RSA Matters:

  • Enables secure communication over insecure channels
  • Forms the basis of SSL/TLS protocols (HTTPS)
  • Used for digital signatures and authentication
  • Essential for secure email, VPNs, and online banking
  • Demonstrates practical application of number theory
Public Key
โ†’
Encryption
โ†’
Private Key
โ†’
Decryption

In this comprehensive guide, we'll explore RSA encryption from its mathematical foundations to practical implementations, with interactive examples to help you understand this crucial cryptographic system.

What is RSA Encryption?

RSA is an asymmetric encryption algorithm that uses two different but mathematically linked keys: a public key for encryption and a private key for decryption. This revolutionary approach solved the key distribution problem that plagued symmetric encryption systems.

๐Ÿ”‘

Asymmetric Encryption

Uses separate keys for encryption and decryption

Public key can be freely distributed

Private key must be kept secret

Eliminates need for secure key exchange

โš–๏ธ

One-Way Function

Easy to compute in one direction

Extremely difficult to reverse without private key

Based on integer factorization problem

Security relies on computational difficulty

๐Ÿ”ข

Mathematical Foundation

Based on Euler's theorem

Uses modular arithmetic

Relies on difficulty of prime factorization

Uses large prime numbers (1024-4096 bits)

Historical Context

RSA was publicly described in 1977 by Rivest, Shamir, and Adleman at MIT. The British intelligence agency GCHQ had secretly developed an equivalent system in 1973, but it remained classified until 1997.

The algorithm was patented in the US in 1983 (expired in 2000), allowing it to become widely adopted in commercial applications.

Apply what youโ€™ve learned by exploring the euler-totient-calculator.

Mathematics Behind RSA

RSA encryption relies on several key concepts from number theory and modular arithmetic:

๐Ÿ”ข

Modular Arithmetic

Definition: a โ‰ก b (mod n) if n divides (a-b)

Properties: (a mod n) ร— (b mod n) โ‰ก (aร—b) mod n

Example: 17 โ‰ก 2 (mod 5) because 17-2=15 is divisible by 5

Essential for RSA encryption/decryption operations

๐Ÿ”Ÿ

Euler's Totient Function

ฯ†(n): Count of integers โ‰ค n that are coprime to n

For primes: ฯ†(p) = p-1

For n=pq: ฯ†(n) = (p-1)(q-1)

Critical for key generation in RSA

โšก

Euler's Theorem

If gcd(a, n) = 1, then aฯ†(n) โ‰ก 1 (mod n)

Special case (Fermat): ap-1 โ‰ก 1 (mod p) for prime p

Forms the mathematical basis for RSA correctness

Ensures encryption/decryption inverses work properly

Core RSA Equation

For any message m and ciphertext c:

Encryption: c โ‰ก me (mod n)

Decryption: m โ‰ก cd (mod n)

Where: e ร— d โ‰ก 1 (mod ฯ†(n))

Proof Sketch:

Given e ร— d โ‰ก 1 (mod ฯ†(n)), we have e ร— d = k ร— ฯ†(n) + 1 for some integer k.

Decryption: cd โ‰ก (me)d โ‰ก meร—d โ‰ก mkร—ฯ†(n)+1 โ‰ก (mฯ†(n))k ร— m โ‰ก 1k ร— m โ‰ก m (mod n)

This works when gcd(m, n) = 1 (true for most messages).

Enhance your understanding by trying real-case problems on the euler-totient-calculator.

RSA Key Generation

The security of RSA depends on proper key generation. Here's the step-by-step process:

1
Choose Two Large Primes

Select two distinct large prime numbers p and q.

// Example with small primes for demonstration
p = 61 // First prime
q = 53 // Second prime
// In practice, these are 1024-4096 bits (300-1200 digits)
2
Compute n and ฯ†(n)

Calculate n = p ร— q and ฯ†(n) = (p-1)(q-1).

n = p ร— q = 61 ร— 53 = 3233
ฯ† = (p-1)(q-1) = 60 ร— 52 = 3120
3
Choose Public Exponent e

Select e such that 1 < e < ฯ†(n) and gcd(e, ฯ†(n)) = 1.

// Common choices: 3, 17, 65537 (2^16 + 1)
e = 17 // Public exponent
gcd(17, 3120) = 1 โœ“
4
Compute Private Exponent d

Calculate d as the modular multiplicative inverse of e modulo ฯ†(n).

// Solve: e ร— d โ‰ก 1 (mod ฯ†(n))
17 ร— d โ‰ก 1 (mod 3120)
d = 2753 // Private exponent
Verification: 17 ร— 2753 = 46801 โ‰ก 1 (mod 3120)

Key Generation Calculator

Enter values and click "Generate RSA Keys"

Encryption Process

Encryption in RSA is straightforward: anyone with the public key can encrypt a message, but only the holder of the private key can decrypt it.

Encryption Steps
  1. Convert message to number: The message must be converted to a numeric representation (typically using ASCII or Unicode).
  2. Ensure m < n: The numeric message m must be less than the modulus n.
  3. Compute ciphertext: c โ‰ก me (mod n)

Example: Encrypt message "HI" with public key (n=3233, e=17)

1. Convert "HI" to numbers: H=8, I=9 (A=1, B=2, ...)

2. Combine: m = 809 (8ร—100 + 9)

3. Compute: c โ‰ก 80917 (mod 3233)

4. Result: c = 1990

// RSA Encryption Algorithm
function rsaEncrypt(message, publicKey) {
  const { n, e } = publicKey;
  // Convert message to integer m
  const m = stringToInteger(message);
  // Ensure m < n (use padding if needed)
  if (m >= n) {
    throw new Error('Message too long');
  }
  // Compute ciphertext: c = m^e mod n
  const c = modPow(m, e, n);
  return c;
}

โš ๏ธ Important Security Note

In practice, RSA is not used directly to encrypt messages. Instead:

  • RSA encrypts a symmetric key (AES key)
  • The symmetric key encrypts the actual message
  • This hybrid approach combines RSA's key exchange with symmetric encryption's speed
  • Proper padding (OAEP) must be used to prevent attacks

Decryption Process

Decryption uses the private key to recover the original message from the ciphertext.

Decryption Steps
  1. Receive ciphertext c
  2. Compute message: m โ‰ก cd (mod n)
  3. Convert number to text: Convert the numeric message back to text

Example: Decrypt ciphertext 1990 with private key (n=3233, d=2753)

1. Compute: m โ‰ก 19902753 (mod 3233)

2. Result: m = 809

3. Convert: 809 โ†’ 8,9 โ†’ "HI"

// RSA Decryption Algorithm
function rsaDecrypt(ciphertext, privateKey) {
  const { n, d } = privateKey;
  // Compute message: m = c^d mod n
  const m = modPow(ciphertext, d, n);
  // Convert integer to string
  const message = integerToString(m);
  return message;
}

RSA Encryption/Decryption Demo

Enter values and click "Run RSA Demo"

Measure your knowledge through practical exercises using the euler-totient-calculator.

Security Analysis

The security of RSA relies on the computational difficulty of certain mathematical problems:

Integer Factorization

Given n = p ร— q, find p and q

Best known algorithm: General Number Field Sieve

Sub-exponential time complexity

RSA Problem

Given n, e, and c โ‰ก me (mod n), find m

Believed to be as hard as factorization

No efficient solution known

Discrete Logarithm

Related problem in other cryptosystems

Given g, h, and n, find x such that gx โ‰ก h (mod n)

Also computationally hard

Key Size Recommendations
Security Level RSA Key Size Equivalent Symmetric Year Secure Until
Basic 1024 bits 80 bits 2010
Standard 2048 bits 112 bits 2030
High 3072 bits 128 bits 2040
Ultra 4096 bits 192 bits 2050+

โš ๏ธ Common Attacks and Mitigations

  • Brute Force: Try all possible keys โ†’ Use large key sizes
  • Mathematical Attacks: Factor n โ†’ Use strong primes
  • Timing Attacks: Measure computation time โ†’ Use constant-time implementations
  • Padding Oracle Attacks: Exploit padding errors โ†’ Use OAEP padding
  • Quantum Attacks: Shor's algorithm โ†’ Migrate to post-quantum cryptography

Real-World Applications

RSA encryption is ubiquitous in modern digital infrastructure:

๐ŸŒ

SSL/TLS (HTTPS)

Secures web browser connections

Used in certificate validation

Establishes secure sessions

Protects against eavesdropping

๐Ÿ“ง

Secure Email

PGP and S/MIME email encryption

Digital signatures for authentication

Message integrity verification

Non-repudiation of messages

๐Ÿ’ณ

Digital Payments

Credit card transaction security

Mobile payment authentication

Cryptocurrency wallets

Secure banking applications

๐Ÿ”

Digital Signatures

Software distribution verification

Document authentication

Code signing certificates

Legal document signing

How HTTPS Uses RSA

Client Hello
โ†’
Server Certificate
โ†’
Client Key Exchange
โ†’
Encrypted Session

RSA is used during the TLS handshake to establish a symmetric session key

Interactive RSA Demo

Complete RSA Simulation

Generate keys, encrypt, and decrypt messages with real RSA calculations.

Click "Run Full Simulation" to see RSA in action

Challenge: Given n=3233 and e=17, encrypt the message "NO" (N=14, O=15 โ†’ m=1415).

Solution:

1. Message: "NO" โ†’ N=14, O=15 โ†’ m=1415

2. Public key: (n=3233, e=17)

3. Encryption: c โ‰ก 141517 (mod 3233)

4. Compute: 14152 โ‰ก 2002 (mod 3233)

5. Continue exponentiation...

6. Final result: c = 1313

Verify: 13132753 (mod 3233) = 1415

Challenge: Why must p and q be kept secret in RSA? What happens if an attacker knows p?

Solution:

If p is known, the attacker can:

1. Compute q = n รท p

2. Calculate ฯ†(n) = (p-1)(q-1)

3. Compute d โ‰ก e-1 (mod ฯ†(n))

4. Decrypt any message encrypted with the public key

This is why RSA security depends on the secrecy of p and q, even though n is public.

Strengthen your concepts through hands-on practice using the euler-totient-calculator.

Limitations and Considerations

While RSA is powerful, it has important limitations:

Computational Cost

Slow compared to symmetric encryption

Not suitable for bulk data encryption

Used only for key exchange in practice

Key Size Growth

Keys must grow exponentially for security

2048-bit RSA โ‰ˆ 256-bit AES security

Storage and transmission overhead

Quantum Vulnerability

Shor's algorithm breaks RSA on quantum computers

Migration to post-quantum crypto needed

Current RSA deployments at risk long-term

Implementation Pitfalls

Padding oracle attacks

Timing side-channels

Key generation weaknesses

Best Practices
  • Use hybrid encryption: RSA for key exchange + AES for data
  • Implement proper padding: Always use OAEP, never textbook RSA
  • Use sufficient key sizes: Minimum 2048 bits, 3072+ for new systems
  • Protect private keys: Use HSMs, key management systems
  • Plan for quantum resistance: Develop migration strategy

Future of RSA and Post-Quantum Cryptography

As quantum computing advances, the cryptographic landscape is evolving:

โš›๏ธ

Quantum Threat

Shor's algorithm factors integers in polynomial time

RSA, ECC, and Diffie-Hellman become vulnerable

Quantum computers with sufficient qubits needed

Timeline estimates: 10-30 years

๐Ÿ›ก๏ธ

Post-Quantum Algorithms

Lattice-based cryptography (Kyber, Dilithium)

Hash-based signatures (SPHINCS+)

Code-based cryptography (McEliece)

Multivariate cryptography

๐Ÿ”€

Transition Strategies

Crypto-agility: design for algorithm updates

Hybrid approaches: RSA + post-quantum

Long-term key protection

Gradual migration timelines

NIST Post-Quantum Cryptography Standardization

NIST is standardizing post-quantum cryptographic algorithms:

  • CRYSTALS-Kyber: Key encapsulation mechanism
  • CRYSTALS-Dilithium: Digital signature algorithm
  • Falcon: Another signature algorithm
  • SPHINCS+: Stateless hash-based signature

These will eventually replace RSA for new systems.

Put your knowledge into action with the help of the euler-totient-calculator.

Continue Your Number Theory Journey

Explore more number theory concepts to deepen your understanding:

Complete Guide to Euler's Totient Function

Understand Eulerโ€™s Totient Function and its role in number theory and modern cryptography.

RSA Encryption Explained

Learn how RSA encryption secures data using prime numbers and modular arithmetic principles.

Modular Arithmetic Basics

Master the fundamentals of modular systems used in algorithms, computing, and cryptography.

Primitive Roots and Applications

Explore primitive roots and their applications in advanced number theory and encryption systems.